{"version":1,"pages":[{"id":"DfHV6awAfKozARFGEB3U","title":"Whoami","pathname":"/sec-88","siteSpaceId":"sitesp_INinX","icon":"user-question","description":"Enjoy it ?  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"X1FMmWl6zUHuDiQ65M7e","title":"Methodologies - Checklists","pathname":"/sec-88/methodologies-checklists","siteSpaceId":"sitesp_INinX","icon":"arrow-progress"},{"id":"A5vNSSyXvyv9xT4Y3v4s","title":"LLM Hacking Checklist","pathname":"/sec-88/methodologies-checklists/llm-hacking-checklist","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"QrmzJk5Ulmd7gWErOt2q","title":"Industry Based Web Checklist","pathname":"/sec-88/methodologies-checklists/industry-based-web-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"H9MVJ2X0G4ylC9I7dprN","title":"Web Services Based Checklist","pathname":"/sec-88/methodologies-checklists/web-services-based-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"JAYzeA64Pmd0q0GwbN8X","title":"Features Abuse CheckList","pathname":"/sec-88/methodologies-checklists/features-abuse-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"CCotjuWd8j6Dt0j0I7hn","title":"Android App Pentesting Checklist","pathname":"/sec-88/methodologies-checklists/android-app-pentesting-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"0kLUI66Mj31aCqq4j8QO","title":"Hunting Methodology","pathname":"/sec-88/methodologies-checklists/hunting-methodology","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"mATqBilYT3UYOajxeVlc","title":"Web Bug Based Checklist","pathname":"/sec-88/methodologies-checklists/web-bug-based-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Methodologies - Checklists","icon":"arrow-progress"}]},{"id":"wQjL0HX9OTtpgDVIBGL8","title":"Web-AppSec","pathname":"/sec-88/web-appsec","siteSpaceId":"sitesp_INinX","icon":"globe-pointer","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"u9cFxRxwIfxnrMYuQcss","title":"Industry Based Checklist","pathname":"/sec-88/web-appsec/industry-based-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"SuTwY93OJmYbX9zyFsh7","title":"Testing Financially-Oriented WepApps","pathname":"/sec-88/web-appsec/industry-based-checklist/testing-financially-oriented-wepapps","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Industry Based Checklist"}]},{"id":"gmEI3pLKFV3B0PFdzEDE","title":"Testing localization - Translation WebApps","pathname":"/sec-88/web-appsec/industry-based-checklist/testing-localization-translation-webapps","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Industry Based Checklist"}]},{"id":"UZrXgnUxEbpJXEZyao82","title":"Services Based Pentest Checklist","pathname":"/sec-88/web-appsec/services-based-pentest-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"hrtZJ8EygBBNwW90vhNI","title":"Features Abuse Checklist","pathname":"/sec-88/web-appsec/features-abuse","siteSpaceId":"sitesp_INinX","description":"Methodology to test features and pages that are very common","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"HdazS0AjsDc3pywgBGnp","title":"2FA","pathname":"/sec-88/web-appsec/features-abuse/2fa","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"BdvKqFotbhmGCxbEdlpJ","title":"Ban Feature","pathname":"/sec-88/web-appsec/features-abuse/ban-feature","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"zXmca2NnhXy2tRreJGmP","title":"CAPTCHA","pathname":"/sec-88/web-appsec/features-abuse/captcha","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"FljOAP9AkYfbhHFP0uBk","title":"Commenting","pathname":"/sec-88/web-appsec/features-abuse/commenting","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"LGrcMyqCuPVZAZNyYZIo","title":"Contact us","pathname":"/sec-88/web-appsec/features-abuse/contact-us","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"ukqJKH5SrChMvuGk6vNp","title":"File-Upload","pathname":"/sec-88/web-appsec/features-abuse/file-upload","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"BaI1mfuTUNPGGiomzgvO","title":"Inviting Feature","pathname":"/sec-88/web-appsec/features-abuse/inviting","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"LDeK49WxgwTjcVTATiPW","title":"Messaging Features","pathname":"/sec-88/web-appsec/features-abuse/messaging-features","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"6SQnHLJmMfUTxqCSUGSl","title":"Money-Related Features","pathname":"/sec-88/web-appsec/features-abuse/money-related-features","siteSpaceId":"sitesp_INinX","description":"Premium...........Paywall Bypass....refund....etc","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"F3k5LNy6LtKSyjTDkZqw","title":"Newsletter","pathname":"/sec-88/web-appsec/features-abuse/newsletter","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"r4iJK9xhVKZFVJk1R1Iz","title":"Email Change","pathname":"/sec-88/web-appsec/features-abuse/email-change","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"pfnull7ZX3AvJ2xu766y","title":"Password Change","pathname":"/sec-88/web-appsec/features-abuse/password-change","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"cAvjVRS25ReVDvhv60H6","title":"Change Name Feature","pathname":"/sec-88/web-appsec/features-abuse/change-name-feature","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"TrPpENC24Pg9DajEmXPt","title":"Change Phone Numbers","pathname":"/sec-88/web-appsec/features-abuse/change-phone-numbers","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"dWIuJJA0ThDKnTb3Dl5U","title":"Logout Feature","pathname":"/sec-88/web-appsec/features-abuse/logout-feature","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"Dqna5QbPzdp07DEYLE5M","title":"Registration","pathname":"/sec-88/web-appsec/features-abuse/registration","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"ksP5s35Sb27LboNkiO8N","title":"Reset Password","pathname":"/sec-88/web-appsec/features-abuse/reset-password","siteSpaceId":"sitesp_INinX","description":"Password Reset Security testing Checklist","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"njasvPGO7JTkVSCqw9gN","title":"Review","pathname":"/sec-88/web-appsec/features-abuse/review","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"5DlrkenIZFrcxIMWu9oh","title":"Rich Editor/Text","pathname":"/sec-88/web-appsec/features-abuse/rich-editor-text","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"yJ9MMOs1r70Qu4nzqivE","title":"Social Sharing","pathname":"/sec-88/web-appsec/features-abuse/social-sharing","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"oBxgcNqRZWHKh4aDFzzb","title":"Addresses Management","pathname":"/sec-88/web-appsec/features-abuse/billing-shipping-address-management","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"O6S1wwJc3bdO6SiIDnOS","title":"Integrations - Webhooks","pathname":"/sec-88/web-appsec/features-abuse/integrations-webhooks","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"UpjMZoKyDgI9SOasTkAo","title":"API Key Management","pathname":"/sec-88/web-appsec/features-abuse/api-key-management","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Features Abuse Checklist"}]},{"id":"f3IkfPcu2QkfwQ6zT7F5","title":"Reconnaissance","pathname":"/sec-88/web-appsec/reconnaissance","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"2C5hrO1W1HQmnQ9ESPk4","title":"Subdomain Enumeration","pathname":"/sec-88/web-appsec/reconnaissance/web-app-security","siteSpaceId":"sitesp_INinX","description":"Deep Subdomain Enumeration Notes","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Reconnaissance"}]},{"id":"FCwAiU5QzPHCT6JtbaMM","title":"Dorking","pathname":"/sec-88/web-appsec/reconnaissance/information-disclosure","siteSpaceId":"sitesp_INinX","description":"CWE-200: Exposure of Sensitive Information to an Unauthorized Actor","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Reconnaissance"}]},{"id":"nXdDqB4OChzMHOjviCGx","title":"Fingerprinting","pathname":"/sec-88/web-appsec/reconnaissance/fingerprinting","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Reconnaissance"}]},{"id":"VW4DqkgrZ2nTL2P7WsWV","title":"Attacking Organizations with big scopes","pathname":"/sec-88/web-appsec/reconnaissance/attacking-organizations-with-big-scopes","siteSpaceId":"sitesp_INinX","description":"https://www.youtube.com/watch?v=vFk0XtHfuSg","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Reconnaissance"}]},{"id":"pCawivm9kGW5ggElDTAG","title":"Improper Authentication","pathname":"/sec-88/web-appsec/improper-authentication","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"qtmykFg2jeHf4Ag8U0kQ","title":"JWT Security","pathname":"/sec-88/web-appsec/improper-authentication/jwt-security","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Improper Authentication"}]},{"id":"mA0U7HMQhDRPMGmu1rvw","title":"SAML Authentication","pathname":"/sec-88/web-appsec/improper-authentication/saml-authentication","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Improper Authentication"}]},{"id":"zsDQo3pK4OmpOg57YnR2","title":"OAUTH Misconfigurations","pathname":"/sec-88/web-appsec/oauth-misconfigurations","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"a5CWdNaLsEONq4dfkKIs","title":"OAuth 2.0 Basics","pathname":"/sec-88/web-appsec/oauth-misconfigurations/oauth-2.0-basics","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"OAUTH Misconfigurations"}]},{"id":"VJy16CgZa4iH56E6CfuQ","title":"OAUTH Misconfigurations","pathname":"/sec-88/web-appsec/oauth-misconfigurations/oauth-to-ato","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"OAUTH Misconfigurations"}]},{"id":"2iEJost2JkuZZHtBij7K","title":"Custom SSO Logins","pathname":"/sec-88/web-appsec/oauth-misconfigurations/custom-sso-logins","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"OAUTH Misconfigurations"}]},{"id":"lCqVi3HBW5nytCuHCHLp","title":"Broken Access Control","pathname":"/sec-88/web-appsec/broken-access-control","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"WkI4WX3uNVygIxwfGXol","title":"Insecure Direct Object References (IDOR)","pathname":"/sec-88/web-appsec/broken-access-control/insecure-direct-object-references-idor","siteSpaceId":"sitesp_INinX","description":"CWE-639: Authorization Bypass Through User-Controlled Key","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Broken Access Control"}]},{"id":"Jbtn0K0Kc8t7pxjeZCyo","title":"403 Bypass","pathname":"/sec-88/web-appsec/broken-access-control/403-bypass","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Broken Access Control"}]},{"id":"k1tBHYBdmlTsMy5U2NYw","title":"XSS-HTML Injection","pathname":"/sec-88/web-appsec/xss_html-injection","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"FZhmf1Q85wvwnraVkxfl","title":"Self-XSS Bypass","pathname":"/sec-88/web-appsec/xss_html-injection/self-xss-bypass","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"XSS-HTML Injection"}]},{"id":"fAHQmK3hephi3YGkdbic","title":"WEB3 RoadMap By Co-Founder of SolidityScan","pathname":"/sec-88/web-appsec/web3-roadmap-by-co-founder-of-solidityscan","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"g4m2B5Hd8kY67LQC3ITH","title":"Auth0 Misconfigurations","pathname":"/sec-88/web-appsec/auth0-misconfigurations","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"k0G2BJ78AqCXaQ9qEDAr","title":"Broken Link Injection","pathname":"/sec-88/web-appsec/broken-link-injection","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"SKAcG9wsOkVH1MVglIQt","title":"Command Injection","pathname":"/sec-88/web-appsec/command-injection","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"jmsPG3bWvvnOKKBnhQqB","title":"CORS","pathname":"/sec-88/web-appsec/cors","siteSpaceId":"sitesp_INinX","description":"CWE-346: Origin Validation Error","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"7VZ2G3bWbEmhiCjMNzG0","title":"CRLF","pathname":"/sec-88/web-appsec/crlf","siteSpaceId":"sitesp_INinX","description":"CWE-93: Improper Neutralization of CRLF Sequences ('CRLF Injection')","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"sNKBqBmIzd5feHbQx7nW","title":"CSRF","pathname":"/sec-88/web-appsec/csrf","siteSpaceId":"sitesp_INinX","description":"CWE-352: Cross-Site Request Forgery (CSRF)","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"7lDIeeOn2mfaX7sbnL6b","title":"Host Header Attacks","pathname":"/sec-88/web-appsec/host-header-injection","siteSpaceId":"sitesp_INinX","description":"CWE-644: Improper Neutralization of HTTP Headers","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"a38gFPUuCvMROZlBia6C","title":"HTTP request smuggling","pathname":"/sec-88/web-appsec/http-request-smuggling","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"Wq30Eywgz5nbzXLKPUaI","title":"JSON Request Testing","pathname":"/sec-88/web-appsec/json-request-testing","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"YFVYP2MdVhGveP4uZvGJ","title":"LFI","pathname":"/sec-88/web-appsec/lfi","siteSpaceId":"sitesp_INinX","description":"CWE-23: Relative Path Traversal","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"eXb5KJFelwMRp7YOqU6C","title":"LFI to RCE","pathname":"/sec-88/web-appsec/lfi/lfi-to-rce","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"LFI"}]},{"id":"LWK1nSimjEjP2B5BQ4PV","title":"No Rate Limit","pathname":"/sec-88/web-appsec/no-rate-limit","siteSpaceId":"sitesp_INinX","description":"CWE-400: Uncontrolled Resource Consumption","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"pI6plBRSiQPhmpBH2HW1","title":"Parameters Manual Testing","pathname":"/sec-88/web-appsec/parameters-manual-testing","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"2ih2I4yLLPKInWwVvOes","title":"Open Redirect","pathname":"/sec-88/web-appsec/open-redirect","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"Ur1WbCtJB1c67qFURHM6","title":"Registration & Takeover Bugs","pathname":"/sec-88/web-appsec/registration-and-takeover-bugs","siteSpaceId":"sitesp_INinX","description":"( Credits: HackTricks )","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"U0H2839l8FZfL843o1l7","title":"Remote Code Execution (RCE)","pathname":"/sec-88/web-appsec/remote-code-execution-rce","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"UicQSUX2tPvfS54KJ0io","title":"Session Fixation","pathname":"/sec-88/web-appsec/session-fixation","siteSpaceId":"sitesp_INinX","description":"CWE-384: Session Fixation","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"v7Ap1ZkLbZ56yQlLuhXH","title":"SQL Injection","pathname":"/sec-88/web-appsec/sql-injection","siteSpaceId":"sitesp_INinX","description":"CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"taXBm3uLRQrKDWF63duo","title":"SQL To RCE","pathname":"/sec-88/web-appsec/sql-injection/sql-to-rce","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"SQL Injection"}]},{"id":"hL41FBIlEaaJCwXd22U4","title":"SSRF","pathname":"/sec-88/web-appsec/ssrf","siteSpaceId":"sitesp_INinX","description":"CWE-918: Server-Side Request Forgery (SSRF)","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"AOjSqsq1qXZlLiOYmIWQ","title":"SSTI","pathname":"/sec-88/web-appsec/ssti","siteSpaceId":"sitesp_INinX","description":"CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"RYPyUBN68XG02zPsuHWQ","title":"Subdomain Takeover","pathname":"/sec-88/web-appsec/subdomain-takeover","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"c9IWRQz5gWVF3QASHtJX","title":"Web Caching Vulnerabilities","pathname":"/sec-88/web-appsec/wcd-wcp","siteSpaceId":"sitesp_INinX","description":"CWE-524: Use of Cache Containing Sensitive Information","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"3ywb0oqWRz0zcM2wwFOS","title":"WebSockets","pathname":"/sec-88/web-appsec/websockets","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"rYOZpSXzLgw9eMLGEoQt","title":"XXE","pathname":"/sec-88/web-appsec/xxe","siteSpaceId":"sitesp_INinX","description":"CWE-611: Improper Restriction of XML External Entity Reference","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"mtBHYfjtMSUGkGMcfLpK","title":"XXE to RCE","pathname":"/sec-88/web-appsec/xxe/xxe-to-rce","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"XXE"}]},{"id":"QKh3dzy1CigXboAeNNqS","title":"Cookie Based Attacks","pathname":"/sec-88/web-appsec/cookie-based-attacks","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"6rH03NkSqARBsgGhfPcb","title":"CMS","pathname":"/sec-88/web-appsec/cms","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"QagZMLdlO81TRsowOsGJ","title":"AEM [Adobe CMS]","pathname":"/sec-88/web-appsec/cms/aem-adobe-cms","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"CMS"}]},{"id":"8ZFs9BYbb6LyQdW8kLLI","title":"XSSI (Cross Site Script Inclusion)","pathname":"/sec-88/web-appsec/xssi-cross-site-script-inclusion","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"vBd35NMjsKZMBcEE55Dj","title":"NoSQL injection","pathname":"/sec-88/web-appsec/nosql-injection","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"SonNaTLBiOwirPmyf0I6","title":"Local VS Remote Session Fixation","pathname":"/sec-88/web-appsec/local-vs-remote-session-fixation","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"Uryygyp67Vb3G1vBFS39","title":"Protection","pathname":"/sec-88/web-appsec/protection","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"TUW3PWNASzNRYh01AOU3","title":"Security Mechanisms for Websites","pathname":"/sec-88/web-appsec/protection/security-mechanisms-for-websites","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Protection"}]},{"id":"ppSWi2DduaxyIkwemO9J","title":"Cookie Flags","pathname":"/sec-88/web-appsec/protection/cookie-flags","siteSpaceId":"sitesp_INinX","description":"https://www.invicti.com/white-papers/security-cookies-whitepaper/","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Protection"}]},{"id":"s6q3YfdAjXEoIAS9pzyy","title":"SameSite Cookie Restrictions","pathname":"/sec-88/web-appsec/protection/bypassing-samesite-cookie-restrictions","siteSpaceId":"sitesp_INinX","description":"https://portswigger.net/web-security/csrf/bypassing-samesite-restrictions","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Protection"}]},{"id":"jle7mpnK1gIWuzQ3tjO4","title":"Same-origin policy (SOP)","pathname":"/sec-88/web-appsec/protection/same-origin-policy-sop","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Protection"}]},{"id":"cpbxhriOgbNaYRIPBQ6K","title":"CSP","pathname":"/sec-88/web-appsec/protection/csp","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Protection"}]},{"id":"Ok3twZjSgvK59UsT3Auk","title":"Hacking IIS Applications","pathname":"/sec-88/web-appsec/hacking-iis-applications","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"BkcDdkS3vpwI8SgECfaf","title":"Dependency Confusion","pathname":"/sec-88/web-appsec/dependency-confusion","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"RP4SdP1TRevh9c3rJxLS","title":"Attacking Secondary Context","pathname":"/sec-88/web-appsec/attacking-secondary-context","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"kmzWAEE8zA6hDNFeOjZO","title":"Hacking Web Sockets","pathname":"/sec-88/web-appsec/hacking-web-sockets","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"E0WlTk2RuqmELU3VgtH3","title":"IDN Homograph Attack","pathname":"/sec-88/web-appsec/idn-homograph-attack","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"KRyjMvzMaIgb7NSbnvAL","title":"DNS Rebinding Attack","pathname":"/sec-88/web-appsec/dns-rebinding-attack","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"ERhI93B6tSbqDTde4NYQ","title":"Bypass URL Filtration","pathname":"/sec-88/web-appsec/bypass-url-filtration","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"tXkf9V0aeVMjWYnJaaBm","title":"Cross-Site Path Traversal (CSPT)","pathname":"/sec-88/web-appsec/cross-site-path-traversal-cspt","siteSpaceId":"sitesp_INinX","description":"CWE-35: Path Traversal","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"cfKGpIplzpZTLQ2Zv423","title":"PostMessage Security","pathname":"/sec-88/web-appsec/postmessage-security","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"FPeCvS565IPZzFRkXmxW","title":"Prototype Pollution","pathname":"/sec-88/web-appsec/prototype-pollution","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"QoHuVR2r8U1sZ01nsrwt","title":"Client-Side Prototype Pollution","pathname":"/sec-88/web-appsec/prototype-pollution/client-side-prototype-pollution","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Prototype Pollution"}]},{"id":"bLLizZq7WVw3zmpyQcYD","title":"Server-Side prototype pollution","pathname":"/sec-88/web-appsec/prototype-pollution/server-side-prototype-pollution","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Prototype Pollution"}]},{"id":"cCbKkoF3emu7VaULIoDp","title":"Tools-Extensions-Bookmarks","pathname":"/sec-88/web-appsec/tools-extensions-and-softwares","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"mQc5z9tv0sG7Ai0ehd2W","title":"WAF Bypassing Techniques","pathname":"/sec-88/web-appsec/waf-bypassing-techniques","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"pRqXxXwcd5Oi29gvNsNe","title":"SSL/TLS Certificate Lifecycle","pathname":"/sec-88/web-appsec/ssl-tls-certificate-lifecycle","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"tK5AOT3ANQBsomXYSVDB","title":"Serialization in .NET","pathname":"/sec-88/web-appsec/serialization-in-.net","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"YFSKj2nLbvFpkkbcxH7V","title":"Client-Side Attacks","pathname":"/sec-88/web-appsec/client-side-attacks","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"uRLq7Ux4p2yi45xCgjmS","title":"JavaScript Analysis","pathname":"/sec-88/web-appsec/client-side-attacks/javascript-analysis","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"},{"label":"Client-Side Attacks"}]},{"id":"Xj6ZfKUGa51XJkwYEaOl","title":"Bug Bounty Platforms/Programs","pathname":"/sec-88/web-appsec/bug-bounty-platforms-programs","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"Nj0V8RTvDaH1RGXHcCsA","title":"DNS Dangling / NS Takeover","pathname":"/sec-88/web-appsec/dns-dangling-ns-takeover","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"tpriBKMlpoT7In1kkPrI","title":"X-Correlation Injection","pathname":"/sec-88/web-appsec/x-correlation-injection","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"VSLx2te1P5lfpdR3OUq2","title":"DoS - Exploiting WAF Request Size Limits","pathname":"/sec-88/web-appsec/dos-exploiting-waf-request-size-limits","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"4JdNYMo80MFb4ToM6Qad","title":"Next.js middleware CP - DOS","pathname":"/sec-88/web-appsec/next.js-middleware-cp-dos","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"9qUVHyHNzhsLE2hrk9V3","title":"Cache Poisoning Test Plan for Next.js","pathname":"/sec-88/web-appsec/cache-poisoning-test-plan-for-next.js","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"PAtfMNOmTVV3cEKhnimE","title":"Nuxt CP - DOS","pathname":"/sec-88/web-appsec/nuxt-cp-dos","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"m9nKJDmwVlYYZCr56ML9","title":"Next.js Middleware Bypass","pathname":"/sec-88/web-appsec/next.js-middleware-bypass","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"55vAuP8XmrNnftYNSpdE","title":"Exploiting Parser Flaws for Access Bypasses","pathname":"/sec-88/web-appsec/exploiting-parser-flaws-for-access-bypasses","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"4pSD74uPPHjCXtrWTk5T","title":"Session Puzzling Attack","pathname":"/sec-88/web-appsec/session-puzzling-attack","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"wLIA4GKHHNoeemJVMmfn","title":"ASP.NET Security Testing","pathname":"/sec-88/web-appsec/asp.net-security-testing","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Web-AppSec","icon":"globe-pointer"}]},{"id":"ibrMOa95F9iCSsurJkKz","title":"AI Security","pathname":"/sec-88/ai-security","siteSpaceId":"sitesp_INinX","icon":"brain-circuit"},{"id":"onLhrMcUb53wvmRF8zxg","title":"MCP Bug Hunting","pathname":"/sec-88/ai-security/mcp-bug-hunting","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"AI Security","icon":"brain-circuit"}]},{"id":"D5mRMvUyUIbvjMHz6lj3","title":"LLM Hacking Checklist","pathname":"/sec-88/ai-security/llm-hacking-checklist","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"AI Security","icon":"brain-circuit"}]},{"id":"3707GXHKm6aoGOmDOIdA","title":"API-Sec","pathname":"/sec-88/api-sec","siteSpaceId":"sitesp_INinX","icon":"envelope-open-text","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"UBteyIg7tHKbrTZ9C3LT","title":"GraphQL API Security Testing","pathname":"/sec-88/api-sec/graphql-api-security-testing","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"VCVpVZWlzy8ZyCo47oto","title":"The Basics","pathname":"/sec-88/api-sec/graphql-api-security-testing/the-basics","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"UzPMmVlDz10nXvkurNmQ","title":"GraphQL Communication","pathname":"/sec-88/api-sec/graphql-api-security-testing/graphql-communication","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"TcNk4LllLl7AFLCOk0sv","title":"Setting Up a Vulnerable GraphQL Server","pathname":"/sec-88/api-sec/graphql-api-security-testing/setting-up-a-vulnerable-graphql-server","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"4rwW0FfWszT9lmQXgSr7","title":"GraphQL Hacking Tools","pathname":"/sec-88/api-sec/graphql-api-security-testing/graphql-hacking-tools","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"NQ3K1jaFVkyQv3R6RXlA","title":"GraphQL Attack Surface","pathname":"/sec-88/api-sec/graphql-api-security-testing/graphql-attack-surface","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"1uH1UxXmLJJytHv10rAT","title":"RECONNAISSANCE","pathname":"/sec-88/api-sec/graphql-api-security-testing/reconnaissance","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"vBS4pe7HAOdoFYnimHhG","title":"GraphQL DOS","pathname":"/sec-88/api-sec/graphql-api-security-testing/graphql-dos","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"nOJ5xIZl6aemDE1RHAnU","title":"Information Disclosure","pathname":"/sec-88/api-sec/graphql-api-security-testing/information-disclosure","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"JH9BOn4Z4cQN3a9bNW5C","title":"AUTHENTICATION AND AUTHORIZATION BYPASSES","pathname":"/sec-88/api-sec/graphql-api-security-testing/authentication-and-authorization-bypasses","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"HDQXjVEMV1mDERsfRH84","title":"Injection Vulnerabilities in GraphQL","pathname":"/sec-88/api-sec/graphql-api-security-testing/injection-vulnerabilities-in-graphql","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"bGdZJn4DDVaxrdcSMiY8","title":"REQUEST FORGERY AND HIJACKING","pathname":"/sec-88/api-sec/graphql-api-security-testing/request-forgery-and-hijacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"eHkYeCQfRhsG8Ufw7q9z","title":"VULNERABILITIES, REPORTS AND EXPLOITS","pathname":"/sec-88/api-sec/graphql-api-security-testing/vulnerabilities-reports-and-exploits","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"4AIEdgiiBZtvT6g341p0","title":"GraphQL Hacking Checklist","pathname":"/sec-88/api-sec/graphql-api-security-testing/graphql-api-testing-checklist","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"},{"label":"GraphQL API Security Testing"}]},{"id":"il32uOqcqS0JavtaxjJJ","title":"API Recon","pathname":"/sec-88/api-sec/api-recon","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"bbFIAMuOOukBFZphPjbd","title":"API Token Attacks","pathname":"/sec-88/api-sec/api-token-attacks","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"G3vsZAIAmzfx02Zyp4Lk","title":"Broken Object Level Authorization (BOLA)","pathname":"/sec-88/api-sec/broken-object-level-authorization-bola","siteSpaceId":"sitesp_INinX","description":"API1: Broken Object Level Authorization (BOLA)","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"q96VAR8sI9tHt4428M0o","title":"Broken Authentication","pathname":"/sec-88/api-sec/broken-authentication","siteSpaceId":"sitesp_INinX","description":"API2-Broken Authentication","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"x1JM35NuKvo0Mwp88VLI","title":"Evasive Maneuvers","pathname":"/sec-88/api-sec/evasive-maneuvers","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"E4P5JcwrQJznfuTb8yci","title":"Improper Assets Management","pathname":"/sec-88/api-sec/improper-assets-management","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"15zIKVMZVyL49TgfLGLV","title":"Mass Assignment Attacks","pathname":"/sec-88/api-sec/mass-assignment-attacks","siteSpaceId":"sitesp_INinX","description":"API3-Broken Object Property Level Authorization (BOPLA)","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"X9oUtPvbQeo7Zg9AfIZb","title":"SSRF","pathname":"/sec-88/api-sec/ssrf","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"1lL6CPOTqF2Cq3obM4Wd","title":"Injection Vulnerabilities","pathname":"/sec-88/api-sec/injection-vulnerabilities","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"71lLhJxhckRbOpq4nssz","title":"Excessive Data Exposure","pathname":"/sec-88/api-sec/excessive-data-exposure","siteSpaceId":"sitesp_INinX","description":"API3-Broken Object Property Level Authorization (BOPLA)","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"gy4EjOlCjaU8OTx4W5Xo","title":"OWASP API TOP 10 MindMap","pathname":"/sec-88/api-sec/owasp-api-top-10-mindmap","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"VED2ZwCNTl91PISl1NOe","title":"Scanning APIs with OWASP ZAP","pathname":"/sec-88/api-sec/scanning-apis-with-owasp-zap","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"API-Sec","icon":"envelope-open-text"}]},{"id":"WDBcEkQvElT3KnTgVMfy","title":"Android-AppSec","pathname":"/sec-88/android-appsec","siteSpaceId":"sitesp_INinX","icon":"android","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"DjL9NffbD1CzhkpPJ28e","title":"Android App Pentesting Checklist","pathname":"/sec-88/android-appsec/apk-pentesting-checklist","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"yG90m2aIVWOmrHrvw7do","title":"Intercepting Cellular Android Traffic via Mobile Data and Ngrok","pathname":"/sec-88/android-appsec/intercepting-cellular-android-traffic-via-mobile-data-and-ngrok","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"FgKTRx6QjsVv7Rmgbs41","title":"Setup Android App Pentesting environment on Arch","pathname":"/sec-88/android-appsec/setup-android-app-pentesting-environment-on-arch","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"Gr2qxqiKl9CWrY7qVfLx","title":"Setup Android App Pentesting environment on Mac M4","pathname":"/sec-88/android-appsec/setup-android-app-pentesting-environment-on-mac-m4","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"IeluthBJQ3M10BmKtt6q","title":"Genymotion - Proxying Android App Traffic Through Burp Suite","pathname":"/sec-88/android-appsec/genymotion-proxying-android-app-traffic-through-burp-suite","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"oiQhL0LKmOcAqhM4MSFz","title":"Setup Android Pentesting Environment on Debian Linux","pathname":"/sec-88/android-appsec/setup-android-pentesting-environment-on-debian-linux","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"nmPFTMNcKZWZByqhP4PB","title":"Android App Fundamentals","pathname":"/sec-88/android-appsec/android-app-fundamentals","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"24y1ApOwMa3rwFtCJfHb","title":"Android Architecture","pathname":"/sec-88/android-appsec/android-app-fundamentals/android-architecture","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"Android App Fundamentals"}]},{"id":"k7k0at95uoyGVMmVKVS8","title":"Android Security Model","pathname":"/sec-88/android-appsec/android-app-fundamentals/android-security-model","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"Android App Fundamentals"}]},{"id":"4fK9LnoH4mNJvawwOUzj","title":"Android App Components","pathname":"/sec-88/android-appsec/android-app-fundamentals/android-app-components","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"Android App Fundamentals"}]},{"id":"rmWnEhSHVJAVOuAep9xk","title":"Intents","pathname":"/sec-88/android-appsec/android-app-fundamentals/android-app-components/intents","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"Android App Fundamentals"},{"label":"Android App Components"}]},{"id":"F7hRequjlIOCtdSX2Pjo","title":"Pending Intents","pathname":"/sec-88/android-appsec/android-app-fundamentals/android-app-components/pending-intents","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"Android App Fundamentals"},{"label":"Android App Components"}]},{"id":"ck6lzVO5iJj9sohg9Py5","title":"Android App Components Security Cheatsheet","pathname":"/sec-88/android-appsec/android-app-components-security-cheatsheet","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"EKYxCvjCNhrNUoUDuvEh","title":"SSL Pinning Bypass","pathname":"/sec-88/android-appsec/ssl-pinning-bypass","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"qmD48dDAsYzikZ2lbXB5","title":"Decompile a Hermes React Native Binary","pathname":"/sec-88/android-appsec/decompile-a-hermes-react-native-binary","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"BQvgdhqU6fNhF5HdFxA7","title":"Get APK for Target","pathname":"/sec-88/android-appsec/how-to-get-apk-file-for-application","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"9kqguKurMFyGz92YB5mX","title":"ADB Commands","pathname":"/sec-88/android-appsec/adb-commands","siteSpaceId":"sitesp_INinX","description":"https://www.automatetheplanet.com/adb-cheat-sheet/","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"rVgXwTMfAFWzccPkINGW","title":"APK structure","pathname":"/sec-88/android-appsec/apk-structure","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"u8gUnsLCNCwBhaApPG2z","title":"Android Permissions","pathname":"/sec-88/android-appsec/android-permissions","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"zxQR0qldiQxb3lzUG3L3","title":"Exported Activity Hacking","pathname":"/sec-88/android-appsec/exported-activity-hacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"7Lhi0InL8tDFyLKUglak","title":"BroadcastReceiver Hacking","pathname":"/sec-88/android-appsec/broadcastreceiver-hacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"oq2kirxoZiFbSaY4tKvk","title":"Content Provider Hacking","pathname":"/sec-88/android-appsec/content-provider-hacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"0yYhOLljZI6KPsHMxUZS","title":"Signing the APK","pathname":"/sec-88/android-appsec/signing-the-apk","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"aRScKTrxu51tUGbvUdnG","title":"Reverse Engineering APK","pathname":"/sec-88/android-appsec/reverse-engineering-apk","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"hrgEHv4vit8sOeo6KmmZ","title":"Deep Links Hacking","pathname":"/sec-88/android-appsec/deep-links-hacking","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"kNDfmLhCCdDAzHR9hJ3z","title":"Drozer Cheat Sheet","pathname":"/sec-88/android-appsec/drozer-cheat-sheet","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"5mTeU9VtIBYVC0re2Eiw","title":"SMALI","pathname":"/sec-88/android-appsec/smali","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"EPW2zdrs6IgmXfPuAbgT","title":"SMALI Cheat Sheet","pathname":"/sec-88/android-appsec/smali/smali-cheat-sheet","siteSpaceId":"sitesp_INinX","description":"Little Help with SMALI","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"SMALI"}]},{"id":"0PXIimQyQtWmExCPKJu1","title":"Smali Code Patching Guide","pathname":"/sec-88/android-appsec/smali/patching-with-smali","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"},{"label":"SMALI"}]},{"id":"2qmS8IqnNEXKGsvOSKVh","title":"Intent Redirection Vulnerability","pathname":"/sec-88/android-appsec/intent-redirection-vulnerability","siteSpaceId":"sitesp_INinX","description":"Risk: High - MASVS_CODE_4","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"3JvnLqHVbrkCNpNApHl3","title":"Janus Vulnerability (CVE-2017-13156)","pathname":"/sec-88/android-appsec/janus-vulnerability-cve-2017-13156","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"qosvfR8nhLb9uFlXu6JS","title":"Task Hijacking","pathname":"/sec-88/android-appsec/task-hijacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"p5CsKuG37NCZf7LzqbNt","title":"Frida Cheat Sheet","pathname":"/sec-88/android-appsec/frida-cheat-sheet","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"kkNCgfbhuEkCTEYLdvzx","title":"Magisk & LSPosed Modules","pathname":"/sec-88/android-appsec/magisk-and-lsposed-modules","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Android-AppSec","icon":"android"}]},{"id":"6RCMi5fzQckW8b5CEHHN","title":"IOS-AppSec","pathname":"/sec-88/ios-appsec","siteSpaceId":"sitesp_INinX","icon":"apple"},{"id":"NiyhtvptiTi9V1CtaSoL","title":"iOS Device/Simulator Setup","pathname":"/sec-88/ios-appsec/ios-device-simulator-setup","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"fH3eU9t9lUOMzFCC3f8u","title":"Understanding iOS Security Basics","pathname":"/sec-88/ios-appsec/understanding-ios-security-basics","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"oMsWYbNzmcqy8e0Ne9Y7","title":"iOS Pentesting Environment Setup","pathname":"/sec-88/ios-appsec/ios-pentesting-environment-setup","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"9otRCzzIGENGeA33T1wo","title":"Configuring Xcode iOS Simulator with Burp Suite for Pentesting on macOS","pathname":"/sec-88/ios-appsec/configuring-xcode-ios-simulator-with-burp-suite-for-pentesting-on-macos","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"E6iNBfS7lfoficbR6bDh","title":"How to GET/PULL/Install IPA","pathname":"/sec-88/ios-appsec/how-to-get-pull-install-ipa","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"1iy70IwWupIVx8yODqoV","title":"Common SSH and libimobiledevice Commands","pathname":"/sec-88/ios-appsec/common-ssh-and-libimobiledevice-commands","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"SOaiw0xw3Z091iB5SjJ4","title":"Intercepting Network Traffic with Burp Suite","pathname":"/sec-88/ios-appsec/intercepting-network-traffic-with-burp-suite","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"eipblH5LBLmqwxe1pqj2","title":"Automatic Static Analysis","pathname":"/sec-88/ios-appsec/automatic-static-analysis","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"nM7qnQqJNCrROrXFEfyR","title":"IOS Reverse Engineering","pathname":"/sec-88/ios-appsec/ios-reverse-engineering","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"IOS-AppSec","icon":"apple"}]},{"id":"kp5xutkNGkgYcWZPe5nz","title":"Network-Sec","pathname":"/sec-88/network-sec","siteSpaceId":"sitesp_INinX","icon":"network-wired","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"3sW3RQqgLFLa6iAQCBWN","title":"Networking Fundamentals","pathname":"/sec-88/network-sec/networking-fundamentals","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"tP3I83O8Dga0lmxLlCJ5","title":"Open Ports Security Testing","pathname":"/sec-88/network-sec/open-ports-security-testing","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"RUSNqfAOGcpxKUrw7U3D","title":"Vulnerability Scanning","pathname":"/sec-88/network-sec/vulnerability-scanning","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"laF9TpXVE6uhUsbPwNVh","title":"Client Side Attacks","pathname":"/sec-88/network-sec/client-side-attacks","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"xSt7GblS6KSjBno9ezA6","title":"Port Redirection and Tunneling","pathname":"/sec-88/network-sec/port-redirection-and-tunneling","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"p5qsjVH79xF0TZjDAkT2","title":"Password Attacks","pathname":"/sec-88/network-sec/password-attacks","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"tP0SzKpRGcIrHsh93zkG","title":"Privilege Escalation [PrevEsc]","pathname":"/sec-88/network-sec/privilege-escalation-prevesc","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"CzrDUfvyBGYBv9cvIBbX","title":"Linux Privilege Escalation","pathname":"/sec-88/network-sec/privilege-escalation-prevesc/linux-privilege-escalation","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Privilege Escalation [PrevEsc]"}]},{"id":"NbY0KaAQy3gt4HUC6M8n","title":"Buffer Overflow (BOF)","pathname":"/sec-88/network-sec/buffer-overflow-bof","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"mXyz8fsUnWKcixOcg0IP","title":"VulnServer","pathname":"/sec-88/network-sec/buffer-overflow-bof/vulnserver","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Buffer Overflow (BOF)"}]},{"id":"rWy3EmOxeo3cNhcdn11g","title":"Sync Breez Enterprize","pathname":"/sec-88/network-sec/buffer-overflow-bof/sync-breez-enterprize","siteSpaceId":"sitesp_INinX","description":"Sync Breez Enterprize v10.0.28","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Buffer Overflow (BOF)"}]},{"id":"jmjDGYCCaBxmy05EjQOU","title":"Crashed CTF","pathname":"/sec-88/network-sec/buffer-overflow-bof/crashed-ctf","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Buffer Overflow (BOF)"}]},{"id":"N9XuWXpRbur5XaKdrTsb","title":"BOF for Linux","pathname":"/sec-88/network-sec/buffer-overflow-bof/bof-for-linux","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Buffer Overflow (BOF)"}]},{"id":"PNI4nzaurySmK36U7w2O","title":"AV Evasion","pathname":"/sec-88/network-sec/av-evasion","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"vap5uWcHr2HxiChnjOs8","title":"Post Exploitation","pathname":"/sec-88/network-sec/post-exploitation","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"2dwKN6V1q2iwILhekxMh","title":"File Transfer","pathname":"/sec-88/network-sec/post-exploitation/file-transfer","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Post Exploitation"}]},{"id":"R59yb099ww2ZHXa7deE2","title":"Maintaining Access","pathname":"/sec-88/network-sec/post-exploitation/maintaining-access","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Post Exploitation"}]},{"id":"TFttXLl605xm9NCJct3D","title":"Pivoting","pathname":"/sec-88/network-sec/post-exploitation/pivoting","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Post Exploitation"}]},{"id":"ZhN36UHgmnMT9MNYntJj","title":"Clean Up","pathname":"/sec-88/network-sec/post-exploitation/clean-up","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Post Exploitation"}]},{"id":"98QwpeWNT3ba0uFVP9w6","title":"Active Directory","pathname":"/sec-88/network-sec/active-directory","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"}]},{"id":"tVCw7Wf1peukAbRPMMre","title":"Basic AD Pentesting","pathname":"/sec-88/network-sec/active-directory/basic-ad-pentesting","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Network-Sec","icon":"network-wired"},{"label":"Active Directory"}]},{"id":"gWRq0mDFf5vu3kFFQ8Rx","title":"Desktop AppSec","pathname":"/sec-88/desktop-appsec","siteSpaceId":"sitesp_INinX","icon":"desktop"},{"id":"EnfL8t0zMAlIPWau9Ze2","title":"Thin Client vs. Thick Client","pathname":"/sec-88/desktop-appsec/thin-client-vs.-thick-client","siteSpaceId":"sitesp_INinX","description":"https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Desktop AppSec","icon":"desktop"}]},{"id":"ba3Cp5dpRll3tPIFaDqL","title":"Cloud Sec","pathname":"/sec-88/cloud-sec","siteSpaceId":"sitesp_INinX","icon":"cloud-arrow-up"},{"id":"E7QpaQ6XVjtG5kOcpwfR","title":"Salesforce Hacking","pathname":"/sec-88/cloud-sec/salesforce-hacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"}]},{"id":"SMa05hnBH62fg72nXRxa","title":"Basics","pathname":"/sec-88/cloud-sec/salesforce-hacking/basics","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"},{"label":"Salesforce Hacking"}]},{"id":"v4G8yoyq8Ak3gXD9Rz9m","title":"Salesforce SAAS Apps Hacking","pathname":"/sec-88/cloud-sec/salesforce-hacking/salesforce-saas-apps-hacking","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"},{"label":"Salesforce Hacking"}]},{"id":"5ik54NwVt8a4Rm97hAPw","title":"Firebase","pathname":"/sec-88/cloud-sec/firebase","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"}]},{"id":"RCmYlD3iTedEsxpV5jr4","title":"S3 Buckets Misconfigurations","pathname":"/sec-88/cloud-sec/s3-buckets-misconfigurations","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"}]},{"id":"hGXwaBaCb7bTIURzmcKa","title":"Amazon Cognito Misconfiguraitons","pathname":"/sec-88/cloud-sec/amazon-cognito-misconfiguraitons","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"}]},{"id":"KblaEIk41fPBoyaMj7X3","title":"Firebase Test Cases","pathname":"/sec-88/cloud-sec/firebase-test-cases","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Cloud Sec","icon":"cloud-arrow-up"}]},{"id":"kBYJtGyleQXY4y6nATDK","title":"Programming","pathname":"/sec-88/programming","siteSpaceId":"sitesp_INinX","icon":"laptop-code","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"jhtNkSMQLS6JzePubyAR","title":"HTML","pathname":"/sec-88/programming/html","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Programming","icon":"laptop-code"}]},{"id":"OIhwbhmluu5OY2VN5WHM","title":"JavaScript (JS)","pathname":"/sec-88/programming/javascript-js","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Programming","icon":"laptop-code"}]},{"id":"NgpnlUqzKAOkwmuvjW2g","title":"window.location object","pathname":"/sec-88/programming/javascript-js/window.location-object","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JavaScript (JS)"}]},{"id":"1yHfEBeLfQDlFnx9Mol9","title":"Python","pathname":"/sec-88/programming/python","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Programming","icon":"laptop-code"}]},{"id":"guH3SNPN1CxlYrlaDoxt","title":"Python Tips","pathname":"/sec-88/programming/python/python-tips","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Python"}]},{"id":"eunvz2hqiMfJQC1LoeH1","title":"Set","pathname":"/sec-88/programming/python/set","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Python"}]},{"id":"E7PZqqYC6VQjfRwtryIy","title":"SetMethods","pathname":"/sec-88/programming/python/set/setmethods","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Python"},{"label":"Set"}]},{"id":"EIasEpOsLt3Gyt5Dl907","title":"JAVA","pathname":"/sec-88/programming/java","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"}]},{"id":"VJEZI0hZKGokjZE12cLF","title":"Java Essentials","pathname":"/sec-88/programming/java/java-essentials","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"FYQt8ym2JuFbahbTLhHg","title":"Java Essentials Code Notes","pathname":"/sec-88/programming/java/java-essentials-code-notes","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"ALe2Lh5FablnQ8YynZHX","title":"Java OOP1","pathname":"/sec-88/programming/java/java-oop1","siteSpaceId":"sitesp_INinX","description":"(Class, Object, Constructor, Overloading, Java Access Modifiers, Recursion, Instanceof Operator)","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"jSCJXr2VDlNpzyUWmfNo","title":"JAVA OOP Principles","pathname":"/sec-88/programming/java/java-oop-principles","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"0Hyy4jSq8MP2kZ7jfirV","title":"Inheritance","pathname":"/sec-88/programming/java/java-oop-principles/inheritance","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"yQuw7TeXHBS9WMDNh0c4","title":"Method Overriding","pathname":"/sec-88/programming/java/java-oop-principles/method-overriding","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"IGKNSbcHVknKW70Z7NgG","title":"Abstract Class","pathname":"/sec-88/programming/java/java-oop-principles/abstract-class","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"qLynFwOeSXXBOxFwOsg2","title":"Interface","pathname":"/sec-88/programming/java/java-oop-principles/interface","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"XfnwXwfreYKMTdV8V78M","title":"polymorphism","pathname":"/sec-88/programming/java/java-oop-principles/polymorphism","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"7QGlJGdPzzjG1ywzZyAx","title":"Encapsulation","pathname":"/sec-88/programming/java/java-oop-principles/encapsulation","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"dYVCTx4t2Mgc1OSj1NfU","title":"Composition","pathname":"/sec-88/programming/java/java-oop-principles/composition","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"},{"label":"JAVA OOP Principles"}]},{"id":"fVkYCtV9tRsriAUdjd1B","title":"Java OOP Challenges","pathname":"/sec-88/programming/java/java-oop-challenges","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"leTBOEoSHL1iAtaz6NMe","title":"Exception Handling","pathname":"/sec-88/programming/java/exception-handling","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"JAVA"}]},{"id":"1fo8SLde3rUeJxbMt9uT","title":"Go","pathname":"/sec-88/programming/go","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"}]},{"id":"PVMUeK6z76gbZxJUUIRc","title":"Go Syntax Tutorial in one file","pathname":"/sec-88/programming/go/go-syntax-tutorial-in-one-file","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"zWaBVN3wWhKaPS6pckr2","title":"Methods and Interfaces","pathname":"/sec-88/programming/go/methods-and-interfaces","siteSpaceId":"sitesp_INinX","description":"methods and intefaces in golang","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"SLh2gw3uDMHIWOojlaDt","title":"Go Slices","pathname":"/sec-88/programming/go/go-slices","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"mgSCj4s7fRLI3QySLLkV","title":"Go Maps","pathname":"/sec-88/programming/go/go-maps","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"pbwtMasLVWwkmpmi6iek","title":"Go Functions","pathname":"/sec-88/programming/go/go-functions","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"MYscyPgCQ6OEmKk7A7XP","title":"Concurrency","pathname":"/sec-88/programming/go/concurrency","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"nJQQxttc4JhQxJOMWovz","title":"Read Files","pathname":"/sec-88/programming/go/read-files","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"Wzqun6yLTnXxvgKuIYMk","title":"Write Files","pathname":"/sec-88/programming/go/write-files","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"vRgGXuTPp9OXWj46MV8O","title":"Package","pathname":"/sec-88/programming/go/package","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"Y2evK73ZomJWOmm5XS7z","title":"How to make personal Package","pathname":"/sec-88/programming/go/package/how-to-make-personal-package","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"},{"label":"Package"}]},{"id":"x9CXKb7UKKBMAnVZjux3","title":"regexp Packages","pathname":"/sec-88/programming/go/package/regexp-packages","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"},{"label":"Package"}]},{"id":"Yxp8mctgLdF2bo3zNTl0","title":"Json","pathname":"/sec-88/programming/go/package/json","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"},{"label":"Package"}]},{"id":"52sFIEpQgAd80wojnM3B","title":"bufio","pathname":"/sec-88/programming/go/package/bufio","siteSpaceId":"sitesp_INinX","description":"https://pkg.go.dev/bufio","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"},{"label":"Package"}]},{"id":"fhQ9bxMkaoPhLR5OEPMW","title":"Time","pathname":"/sec-88/programming/go/package/time","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"},{"label":"Package"}]},{"id":"JWKInOd00agWh2qj6Z6e","title":"Signals-Exit","pathname":"/sec-88/programming/go/signals-exit","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"op4tHgORHF9FtDq8Qa1j","title":"Unit Testing","pathname":"/sec-88/programming/go/unit-testing","siteSpaceId":"sitesp_INinX","description":"https://blog.jetbrains.com/go/2022/11/22/comprehensive-guide-to-testing-in-go","breadcrumbs":[{"label":"Programming","icon":"laptop-code"},{"label":"Go"}]},{"id":"o3W9YNIFsG8rnIMWcHJC","title":"Operating Systems","pathname":"/sec-88/operating-systems","siteSpaceId":"sitesp_INinX","icon":"redhat","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r"},{"id":"miMw9MWWWzJ7Oc8VXkHq","title":"Linux","pathname":"/sec-88/operating-systems/linux","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"}]},{"id":"IsuPAsIP9kbL5NKTOA85","title":"Linux Commands","pathname":"/sec-88/operating-systems/linux/linux-commands","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"y7tfOqIkMZCBwoI5GpTa","title":"Tools","pathname":"/sec-88/operating-systems/linux/tools","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"De5x8gCXfWIAa0WIZoWr","title":"Linux File System","pathname":"/sec-88/operating-systems/linux/linux-file-system","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"mr109HyixPQHqMwQNCwi","title":"Bash Scripting guide","pathname":"/sec-88/operating-systems/linux/bash-scripting-guide","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"qfYeNBf6oWUxTgRg89XU","title":"tmux","pathname":"/sec-88/operating-systems/linux/tmux","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"u5u2n71jbNtkoxmjisv8","title":"Git","pathname":"/sec-88/operating-systems/linux/git","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"0lDJhELbEHNSCpaGhXEU","title":"Install Go tools from private repositories using GitHub PAT","pathname":"/sec-88/operating-systems/linux/install-go-tools-from-private-repositories-using-github-pat","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"},{"label":"Linux"}]},{"id":"AOUDMLhCHr25DCugw2Gl","title":"VPS","pathname":"/sec-88/operating-systems/vps","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"}]},{"id":"mlGUwBwH356rlcY6FJno","title":"Burp Suite","pathname":"/sec-88/operating-systems/burp-suite","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Operating Systems","icon":"redhat"}]},{"id":"nL4vbhP5kuG5t0Rx3xuv","title":"Write-Ups","pathname":"/sec-88/write-ups","siteSpaceId":"sitesp_INinX","icon":"blog"},{"id":"eMRnKYV0TANvGRuaL0UV","title":"Discord OAuth Misconfig → ATO, Pre-ATO & 2FA Bypass","pathname":"/sec-88/write-ups/discord-oauth-misconfig-ato-pre-ato-and-2fa-bypass","siteSpaceId":"sitesp_INinX","description":"Collaboration with Amr A'laa https://www.linkedin.com/in/amr-alaa-a14b65216/","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"FZqlEhsvPSvyn2yWYgod","title":"How to Use Claude Code for Bug Hunting — For Free (A Beginner's Guide)","pathname":"/sec-88/write-ups/how-to-use-claude-code-for-bug-hunting-for-free-a-beginners-guide","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"5ZgGaOGvWliU1RzljBvl","title":"API BAC leads to PII Data Disclosure","pathname":"/sec-88/write-ups/api-bac-leads-to-pii-data-disclosure","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"Pid2Im1aB34bzu5S9oRt","title":"Misconfigured OATUH leads to Pre-Account Takeover","pathname":"/sec-88/write-ups/misconfigured-oatuh-leads-to-pre-account-takeover","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"c8DQo4PUb7uY1AuU0dCt","title":"Automating Bug Bounty with GitHub Actions","pathname":"/sec-88/write-ups/automating-bug-bounty-with-github-actions","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"lDUqjidOG5cv1fSSpmLi","title":"From Recon to Reward: My Bug Bounty Methodology when Hunting on Public Bug Bounty Programs","pathname":"/sec-88/write-ups/from-recon-to-reward-my-bug-bounty-methodology-when-hunting-on-public-bug-bounty-programs","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"VIEPQnPiK8P5bE5IHQ8A","title":"Exploring Subdomains: From Enumeration to Takeover Victory","pathname":"/sec-88/write-ups/exploring-subdomains-from-enumeration-to-takeover-victory","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"EG3uwhDtaG4vJFSQ5FTZ","title":"0-Click Account Takeover via Insecure Password Reset Feature","pathname":"/sec-88/write-ups/0-click-account-takeover-via-insecure-password-reset-feature","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"aeeknB2QQcgTvU4mMwRa","title":"How a Simple Click Can Lead to Account Takeover: An OAuth Insecure Implementation Vulnerability","pathname":"/sec-88/write-ups/how-a-simple-click-can-lead-to-account-takeover-an-oauth-insecure-implementation-vulnerability","siteSpaceId":"sitesp_INinX","description":"If you enjoy what I do, please support me  Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"w6rcPFGpfLwN0UmSeplP","title":"The Power Of IDOR even if it is unpredictable IDs","pathname":"/sec-88/write-ups/finding-high-impact-bugs-in-a-private-bug-bounty-program-our-success-story","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"M0rOyFwmmU7TkwgAnLOp","title":"Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens","pathname":"/sec-88/write-ups/unlocking-the-weak-spot-exploiting-insecure-password-reset-tokens","siteSpaceId":"sitesp_INinX","description":"Buy Me Ko-fi! https://ko-fi.com/h0tak88r","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"wSx3MIt42WU1G2Z32wLf","title":"AI Under Siege: Discovering and Exploiting Vulnerabilities","pathname":"/sec-88/write-ups/ai-under-siege-discovering-and-exploiting-vulnerabilities","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"2DbJBM10BUiLdqCmP9aY","title":"Inside the Classroom: How We Hacked Our Way Past Authorization on a Leading EdTech Platform","pathname":"/sec-88/write-ups/inside-the-classroom-how-we-hacked-our-way-past-authorization-on-a-leading-edtech-platform","siteSpaceId":"sitesp_INinX","description":"","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"inr4rWzedgLd1YFod8yT","title":"How We Secured Our Client’s Platform Against Interaction-Free Account Thefts","pathname":"/sec-88/write-ups/how-we-secured-our-clients-platform-against-interaction-free-account-thefts","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"Pg5E7dwymfldvJqfepvP","title":"Unchecked Privileges: The Hidden Risk of Role Escalation in Collaborative Platforms","pathname":"/sec-88/write-ups/unchecked-privileges-the-hidden-risk-of-role-escalation-in-collaborative-platforms","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"QIfEZBjYCcuPW17DUfAw","title":"Decoding Server Behavior: The Key to Mass Account Takeover","pathname":"/sec-88/write-ups/decoding-server-behavior-the-key-to-mass-account-takeover","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"Wr0YCMGcI6w0qXqgHUTu","title":"Exploiting JSON-Based CSRF: The Hidden Threat in Profile Management","pathname":"/sec-88/write-ups/exploiting-json-based-csrf-the-hidden-threat-in-profile-management","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"HyhTkHIQcMdzuIiECc9F","title":"How We Turned a Medium XSS into a High Bounty by Bypassing HttpOnly Cookie","pathname":"/sec-88/write-ups/how-we-turned-a-medium-xss-into-a-high-bounty-by-bypassing-httponly-cookie","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"H9JBgb90OpJDHzCj43IW","title":"How Monitoring Target Updates Helped Me Earn Bounties in Bug Bounty","pathname":"/sec-88/write-ups/how-monitoring-target-updates-helped-me-earn-bounties-in-bug-bounty","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"IiEwNNCZtQD7Q2YCgUoj","title":"Semi-Automating My Android Bug Hunting Flow with apkX","pathname":"/sec-88/write-ups/semi-automating-my-android-bug-hunting-flow-with-apkx","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"pJQvUF71GQaKj8CVghCp","title":"Using N8N To Orchestrate Web and Mobile Bug Hunting","pathname":"/sec-88/write-ups/using-n8n-to-orchestrate-web-and-mobile-bug-hunting","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"RvHDAsVrhtdetLxagKnx","title":"Hacking Android Labs","pathname":"/sec-88/write-ups/hacking-labs","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"}]},{"id":"yuJP4AJPprR4okjRn4tv","title":"Injured Android","pathname":"/sec-88/write-ups/hacking-labs/injured-android","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"},{"label":"Hacking Android Labs"}]},{"id":"bLjYOM62ZJSzY0dOAtxT","title":"Hacking the VulnWebView Lab","pathname":"/sec-88/write-ups/hacking-labs/hacking-the-vulnwebview-lab","siteSpaceId":"sitesp_INinX","description":"Lab Link: https://github.com/t4kemyh4nd/vulnwebview","breadcrumbs":[{"label":"Write-Ups","icon":"blog"},{"label":"Hacking Android Labs"}]},{"id":"KaJ0ytCTbTx7CtLZQMP5","title":"Hacking InsecureBankv2 App","pathname":"/sec-88/write-ups/hacking-labs/hacking-insecurebankv2-app","siteSpaceId":"sitesp_INinX","breadcrumbs":[{"label":"Write-Ups","icon":"blog"},{"label":"Hacking Android Labs"}]}]}